Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Columbia Weather Systems MicroServer Command Shell in Externally Accessible Directory
Vulnerability Description
An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain files and directories. An attacker with admin access to MicroServer can gain limited shell access, enabling persistence through reverse shells, and the ability to modify or remove data stored in the file system.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
外部可访问目录中的命令行Shell
Vulnerability Title
Columbia Weather Systems MicroServer 安全漏洞
Vulnerability Description
Columbia Weather Systems MicroServer是美国Columbia Weather Systems公司的一个气象数据服务器。 Columbia Weather Systems MicroServer存在安全漏洞,该漏洞源于未使用的Webshell允许无限次登录尝试,可能导致有限的shell访问权限获取。
CVSS Information
N/A
Vulnerability Type
N/A